Data Automation Engineer

Exabeam is the Smarter SIEM™ company. We help security operations and insider threat teams work smarter, allowing them to detect, investigate and respond to cyberattacks in 51 percent less time. Security organizations no longer have to live with missed distributed attacks, unknown threats, and manual investigations and remediation. With the modular Exabeam Security Management Platform, analysts can use behavioral analytics to detect attacks and automate investigation and incident response. Exabeam Smart Timelines, sequences of user and device behavior created using machine learning, further reduce the time and specialization required to detect attacker tactics, techniques and procedures. For more information, visit https://www.exabeam.com.
Exabeam is the Smarter SIEM™ company. We help security operations and insider threat teams work smarter, allowing them to detect, investigate and respond to cyberattacks in 51 percent less time. Security organizations no longer have to live with excessive logging fees, missed distributed attacks and unknown threats, or manual investigations and remediation. With the modular Exabeam Security Management Platform, analysts can collect unlimited log data, use behavioral analytics to detect attacks, and automate incident response, both on-premise or in the cloud. Exabeam Smart Timelines, sequences of user and device behavior created using machine learning, further reduce the time and specialization required to detect attacker tactics, techniques and procedures.
Position OverviewExabeam is looking for a highly motivated Data Automation Engineer to work within our Professional Services team. You will create content for our whole suite of Exabeam security products. This a remote role and will report directly to a Director, Professional Services.
Responsibilities

• Understand security regulations (e.g. PCI, ISO 27001, etc.) and suggest reports that would help customers achieve compliance
• Build reports and visualizations using the Elasticsearch platform
• Research and understand log events of security and IT devices
• Collaborate with Professional Services Engineers and build parsers for log events according to Exabeam's data model during deployment engagements
• Own and create the Exabeam categorization model, the incident response playbook, and the
behavioral models to detect malicious activities in networks
• Code scripts in python to integrate with security and IT devices

Qualifications

• Experience with Log Collection (Experience working with/within SOC teams preferred)
• Experience with RegEx and Python (ability to know the difference between Python 2 & 3)
• Experience with Linux and comfortability on the command line
• Prior experience with SIEM tools (Splunk, QRadar, LogRthym preferred)
• Scripting skills (Bash preferred)
• Ability to take logs from systems to translate into a format that Exabeam can ingest- such as event builders and parsers
• Knowledge of industry best practices, and ability to understand data pipeline and processes, data cleaning
• Familiarity with SOAR desirable

Exabeam is privately funded by Lightspeed Venture Partners, Cisco Investments, Norwest Venture Partners, Acrew Capital, Icon Ventures, and investor Shlomo Kramer. For more information visit https://www.exabeam.com or follow us on LinkedIn and Twitter. #LI-KS1
Exabeam is privately funded by Lightspeed Venture Partners, Cisco Investments, Norwest Venture Partners, Acrew Capital, Icon Ventures, and investor Shlomo Kramer. For more information visit https://www.exabeam.com or follow us on LinkedIn and Twitter.